firstmac.com.au
firstmac.com.au
Group: embargo
Discovered by ransomware.live: 2024-04-30
Estimated attack date: 2024-04-30
Country:
Description:
Firstmac Limited is an Australian owned company with experience in home and investment loans. They have a range of market insurance products backed by international company, Allianz Group. International ratings agency Standard & Poors gives Firstmac its highest possible ranking (strong) for loan serviceability abilities. - 500+ GB full databases, source codes, sensitive customer data
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 2
Compromised Users: 52
Third Party Employee Credentials: 17
External Attack Surface: 3
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- mxa-00508901.gslb.pphosted.com.
- mxb-00508901.gslb.pphosted.com.
TXT Records
- google-site-verification=aNP0cTpduGPsrmZql7nOxrJd4xP2Ohp_baeCouqASPY
- f0aLCHI1osC3PcAKnynp5mV214M1//DnqHhw5Bvff97+tHRRNxGIFxZk1Bmk5cQVudPTVXWWsyuyl2uaYJ+j8Q==
- _itxlje3llk3qbnmg56uhz339otm4s2v
- v=spf1 a mx include:spf.protection.outlook.com include:mktomail.com include:spf-00508901.pphosted.com include:amazonses.com a:mail-01.indue.com.au a:mail-02.indue.com.au ip4:210.9.226.243 ip4:210.9.226.245 ip4:210.9.64.251 ip4:210.9.64.253 ip4:210.10.206." "190 ip4:52.62.232.243 ip4:52.63.176.157 ip4:52.63.60.48 ip4:74.121.49.93 ip4:59.100.93.219 ip4:59.100.94.219 -all
- V9XKC00U45QHASS392GZVSKR68O2BBDQ9JN930UM
- sf52n1qwl2gpng2kwr5cf7453v505jz6
- 6dr02bh18y540d3zhwks1539zl7789z0
- @MS=ms93822311
- atlassian-domain-verification=gDDfLb2RBLBUxmTfMtVNb67LmVIWbGXzQE86ts6Y6k7l0TfkYrpFqG9IqDqN6CPm
- google-site-verification=rlozAXdzkfEZsicMN1dYUIbOuiKNpDR5Ubam0VV1U50
- google-site-verification=IXootSD0GNW-v26HlObsdR07qreQQFjtWlMbl1fx0Rs
- _tc1rmqc5aro3o12qmowi96y1s54g35h
- zjpgtzc0njjkylptkf63cl1d2rj4rnc6
Cloud / SaaS Services Detected
Atlassian
Amazon SES/WorkMail
Microsoft 365
Marketo
Proofpoint
Leak Screenshot:
